Guidance for Cyber Forensics project in Linux
I am a Post Graduate student doing my final year project in the field of memory forensics. I have been trying to extract digital evidence from the RAM dump of a Windows system and have been successful, so far.
I would like to do something similar on the Linux platform. Is there any suggestion as to what relevant evidence could be collected from the volatile memory of a Linux system? Could anyone suggest anything interesting and relevant for a final year project?